Attacker Value

Unknown

(0 users assessed)

Exploitability

Unknown

(0 users assessed)

User Interaction

Unknown

Privileges Required

Unknown

Attack Vector

Unknown

CVE-2024-1635

Disclosure Date: February 19, 2024 •

CVE-2024-1635

MITRE ATT&CK

Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

A vulnerability was found in Undertow. This vulnerability impacts a server that supports the wildfly-http-client protocol. Whenever a malicious user opens and closes a connection with the HTTP port of the server and then closes the connection immediately, the server will end with both memory and open file limits exhausted at some point, depending on the amount of memory available.

At HTTP upgrade to remoting, the WriteTimeoutStreamSinkConduit leaks connections if RemotingConnection is closed by Remoting ServerConnectionOpenListener. Because the remoting connection originates in Undertow as part of the HTTP upgrade, there is an external layer to the remoting connection. This connection is unaware of the outermost layer when closing the connection during the connection opening procedure. Hence, the Undertow WriteTimeoutStreamSinkConduit is not notified of the closed connection in this scenario. Because WriteTimeoutStreamSinkConduit creates a timeout task, the whole dependency tree leaks via that task, which is added to XNIO WorkerThread. So, the workerThread points to the Undertow conduit, which contains the connections and causes the leak.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

None

Impact Score:

Unknown

Exploitability Score:

Unknown

Vector:

Unknown

Attack Vector (AV):

Unknown

Attack Complexity (AC):

Unknown

Privileges Required (PR):

Unknown

User Interaction (UI):

Unknown

Scope (S):

Unknown

Confidentiality (C):

Unknown

Integrity (I):

Unknown

Availability (A):

Unknown

General Information

Offensive Application

Unknown

Utility Class

Unknown

Ports

Unknown

Vulnerable Versions

Red Hat JBoss Enterprise Application Platform 7 not down converted

Red Hat JBoss Enterprise Application Platform 7.4 for RHEL 8 not down converted

Red Hat JBoss Enterprise Application Platform 7.4 for RHEL 9 not down converted

Red Hat JBoss Enterprise Application Platform 7.4 on RHEL 7 not down converted

Red Hat Single Sign-On 7.6 for RHEL 7 not down converted

Red Hat Single Sign-On 7.6 for RHEL 8 not down converted

Red Hat Single Sign-On 7.6 for RHEL 9 not down converted

RHEL-8 based Middleware Containers not down converted

RHSSO 7.6.8 not down converted

OpenShift Serverless not down converted

Red Hat build of Apache Camel for Quarkus not down converted

Red Hat build of Apache Camel for Spring Boot 3 not down converted

Red Hat build of Apache Camel for Spring Boot 4 not down converted

Red Hat build of Apicurio Registry not down converted

Red Hat Build of Keycloak not down converted

Red Hat build of OptaPlanner 8 not down converted

Red Hat build of Quarkus not down converted

Red Hat Data Grid 8 not down converted

Red Hat Fuse 7 not down converted

Red Hat Integration Camel K not down converted

Red Hat Integration Camel Quarkus not down converted

Red Hat JBoss Data Grid 7 not down converted

Red Hat JBoss Enterprise Application Platform 8 not down converted

Red Hat JBoss Fuse Service Works 6 not down converted

Red Hat Process Automation 7 not down converted

streams for Apache Kafka not down converted

Prerequisites

Unknown

Discovered By

Unknown

PoC Author

Unknown

Metasploit Module

Unknown

Reporter

Unknown

Vendors

Red Hat

Products

Red Hat JBoss Enterprise Application Platform 7,
Red Hat JBoss Enterprise Application Platform 7.4 for RHEL 8,
Red Hat JBoss Enterprise Application Platform 7.4 for RHEL 9,
Red Hat JBoss Enterprise Application Platform 7.4 on RHEL 7,
Red Hat Single Sign-On 7.6 for RHEL 7,
Red Hat Single Sign-On 7.6 for RHEL 8,
Red Hat Single Sign-On 7.6 for RHEL 9,
RHEL-8 based Middleware Containers,
RHSSO 7.6.8,
OpenShift Serverless,
Red Hat build of Apache Camel for Quarkus,
Red Hat build of Apache Camel for Spring Boot 3,
Red Hat build of Apache Camel for Spring Boot 4,
Red Hat build of Apicurio Registry,
Red Hat Build of Keycloak,
Red Hat build of OptaPlanner 8,
Red Hat build of Quarkus,
Red Hat Data Grid 8,
Red Hat Fuse 7,
Red Hat Integration Camel K,
Red Hat Integration Camel Quarkus,
Red Hat JBoss Data Grid 7,
Red Hat JBoss Enterprise Application Platform 8,
Red Hat JBoss Fuse Service Works 6,
Red Hat Process Automation 7,
streams for Apache Kafka

References

Canonical

CVE-2024-1635 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1635)

Miscellaneous

https://access.redhat.com/security/cve/CVE-2024-1635

https://bugzilla.redhat.com/show_bug.cgi?id=2264928

https://security.netapp.com/advisory/ntap-20240322-0007/

https://access.redhat.com/errata/RHSA-2024:1674

https://access.redhat.com/errata/RHSA-2024:1675

https://access.redhat.com/errata/RHSA-2024:1676

https://access.redhat.com/errata/RHSA-2024:1677

https://access.redhat.com/errata/RHSA-2024:1860

https://access.redhat.com/errata/RHSA-2024:1861

https://access.redhat.com/errata/RHSA-2024:1862

https://access.redhat.com/errata/RHSA-2024:1864

https://access.redhat.com/errata/RHSA-2024:1866

Rapid7

Unknown

CVE-2024-1635

Unknown

Unknown

Unknown

Unknown

Unknown

CVE-2024-1635

Description

Add Assessment

CVSS V3 Severity and Metrics

General Information

Vendors

Products

References

Canonical

Miscellaneous

Additional Info

Technical Analysis

Unknown

CVE-2024-1635

Unknown

Unknown

Unknown

Unknown

Unknown

CVE-2024-1635

Description

Add Assessment

CVSS V3 Severity and Metrics

General Information

Vendors

Products

References

Canonical

Miscellaneous

Additional Info

Technical Analysis

Quick Cookie Notification